mirrors/acme4j
1
0
Fork 0
mirror of https://github.com/shred/acme4j.git synced 2025-12-13 11:14:02 +08:00
Code Issues Packages Projects Releases Wiki Activity
870 Commits 4 Branches 43 Tags
83d6f38ec745d1ead5ee11b9eb635cc1ec2f02e9
Commit Graph

436 Commits

Author SHA1 Message Date
Richard Körber
83d6f38ec7 Add method to return profile description 2025-01-18 11:47:16 +01:00
Richard Körber
43b6a7c7c6 Fix unit tests 2025-01-18 11:38:39 +01:00
Jared Crawford
c0fede3b1a Add support for draft-aaron-acme-profiles 2025-01-18 10:37:20 +01:00
Jared Crawford
6e9c266b17 Add support for draft-aaron-acme-profiles 2025-01-18 10:37:20 +01:00
Jared Crawford
c85f4a627b Add support for draft-aaron-acme-profiles 2025-01-18 10:37:20 +01:00
Jared Crawford
19371229b8 Add support for draft-aaron-acme-profiles 2025-01-18 10:37:20 +01:00
Richard Körber
318aeaab9d Single method to get the certificate 2024-10-21 07:11:09 +02:00
Richard Körber
c6f6ee9d07 Check if auto-renewal-get is supported by CA 2024-10-20 09:34:26 +02:00
Richard Körber
d9186ede14 Fix outdated newAccount test response 2024-10-01 14:50:17 +02:00
Richard Körber
87bbb9efbf Add Buypass provider 2024-09-22 16:54:17 +02:00
Richard Körber
beec5156c2 Add Google CA provider 2024-09-22 16:32:00 +02:00
Richard Körber
0ccd68c09a Update to draft-ietf-acme-ari-05 2024-08-24 12:19:13 +02:00
Richard Körber
e589b16d98 Allow custom pebble.minica.pem files 
Also changes from a Java proprietary truststore file to the official
Pebble PEM file.
 2024-08-22 20:16:35 +02:00
Richard Körber
171ee474c0 Deprecate update() and AcmeRetryAfterException 2024-08-18 11:42:50 +02:00
Richard Körber
b897dc277d Add new methods for status change busy waiting 2024-08-17 17:20:52 +02:00
Richard Körber
a9ce33a921 Update to draft-ietf-acme-ari-04 
Only changes to the docs were necessary.
 2024-06-11 18:54:31 +02:00
Richard Körber
6120a2b476 Do not set autoRenewal on cert replacement (fixes #158) 2024-06-07 17:18:04 +02:00
Richard Körber
6d5da63b8e Handle HTTP errors when fetching a nonce 
The nonce is fetched via HEAD request. Before this fix, if there was a
HTTP error, acme4j expected a Problem JSON body, which was not send
because of the HEAD request, and lead to an AcmeProtocolException.

Now either an AcmeException or AcmeRetryAfterException is thrown.
 2024-05-15 15:39:56 +02:00
Richard Körber
aeff12088f Update spotbugs and related new warnings (fixes #157) 2024-05-10 16:07:41 +02:00
Richard Körber
773cacde4f Add subdomain validation support (RFC 9444) 2024-03-15 17:18:01 +01:00
Richard Körber
b5a7e00ac3 Use example IPs according to RFC3849/RFC5737 2024-03-13 20:27:12 +01:00
Richard Körber
511954171d Use en locale for uppercase/lowercase (fixes #156) 2024-03-09 16:14:20 +01:00
Richard Körber
bbc057b81f Align unit test names 2024-02-29 17:06:18 +01:00
Richard Körber
f9d479a8f7 Simplify handling of Retry-After header 2024-02-26 18:26:45 +01:00
Richard Körber
908e11b152 Workaround for ssl.com metadata bug 
ssl.com requires EAB for account creation, but the metadata's
"externalAccountRequired" property gives "false", indicating that no EAB
is used.

This fix patches the read directory's metadata if the ssl.com provider
is used.
 2024-02-26 18:26:45 +01:00
Richard Körber
081e53f137 SSL.com: Add support for ECC and RSA mode 2024-02-26 18:26:45 +01:00
Richard Körber
98ef2b8466 Give instance URL if user action is required 2024-02-26 18:26:45 +01:00
Richard Körber
7c17645212 Add missing ssl.com unit tests 2024-02-26 18:26:45 +01:00
Richard Körber
60342c435f Add ZeroSSL provider 
As ZeroSSL makes use of the Retry-After header, the example
implementation has also been changed accordingly.
 2024-02-26 18:26:45 +01:00
George Fergadis
9c6eb5e610 Add SSL.com provider 2024-02-20 16:22:39 +01:00
Richard Körber
48c32f612d Upgrade to draft-ietf-acme-ari-03 2024-02-19 07:44:40 +01:00
Richard Körber
6a4770c23a Get unique identifier according to draft-ietf-acme-ari-03 2024-02-18 16:16:29 +01:00
Richard Körber
edb7ec83b6 Generic ACME URIs forward query parameters (#152) 2024-02-06 18:20:44 +01:00
Richard Körber
216d30b600 Minor JavaDoc change 2023-11-24 11:56:12 +01:00
Richard Körber
67a90df47f Do not set two CNs 2023-11-24 11:38:29 +01:00
Richard Körber
50a74251e0 setCommonName() sets CN only 2023-11-24 11:18:45 +01:00
Matthew McPherrin
278f9bd57b Test value changes 
These are genuine functionality changes, and may represent unexpected
impact.  Having two CNs doesn't seem right, but that case is tested so
I'm leaving that here for discussion's sake.

The other test case doesn't have a CN anymore, as expected
 2023-11-24 11:05:27 +01:00
Matthew McPherrin
beb1d53dc0 Make setCommonName go through the addValue path 
This ensures the CN is present as a SAN
 2023-11-24 11:05:27 +01:00
Matthew McPherrin
78ccae6bc9 SubjectAlternativeName should be critical for empty subject 
Required by Java as well as the Baseline Requirements, RFC5280, etc.

If the subject field of the certificate is an empty SEQUENCE, this
extension MUST be marked critical, as specified in RFC 5280, Section
4.2.1.6. Otherwise, this extension MUST NOT be marked critical.
 2023-11-24 11:05:27 +01:00
Matthew McPherrin
1cf53b6cf4 Make the Common Name optional in CSRs 
This change doesn't set it by default when adding domains, and adds a
method to explicitly set it if desired.
 2023-11-24 11:05:27 +01:00
Richard Körber
e041decf48 Mark ARI related methods as draft 2023-10-11 07:17:59 +02:00
aarcloudera
f61ef3ede7 Accepting hmac key of all sizes (#144) 2023-10-11 07:09:55 +02:00
Richard Körber
2485666b87 Add missing acme-ari-01 call 2023-09-27 18:45:20 +02:00
Richard Körber
3ad325782b Add method to set arbitrary MAC algorithm (#141) 2023-09-22 11:20:31 +02:00
Richard Körber
af9f236f90 Control gzip compression via system property 2023-08-11 09:45:38 +02:00
Mathias Loesch
0a45dcb4eb PebbleAcmeProvider: allow setting custom port w/o custom host 
Simplifies usage with testcontainers where the Pebble port in
the Docker container usually gets mapped to a random host port.
 2023-08-11 08:48:51 +02:00
Richard Körber
79c2ab7688 Minor documentation updates 2023-07-21 15:01:51 +02:00
Richard Körber
a648a513f6 Find certificates by issuer 2023-05-20 17:20:13 +02:00
Richard Körber
7f20545e14 Keep alternate certificate instances 2023-05-20 17:19:12 +02:00
Richard Körber
d9894f42eb Add support for draft-ietf-acme-ari-01 2023-05-20 16:53:18 +02:00